Training
Featured CourseView All Courses

SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals

SEC595Cyber Defense, Artificial Intelligence
SEC595: Applied Data Science and AI/Machine Learning for Cybersecurity Professionals
View course detailsRegister
Get a Free Hour of SANS Training

Experience SANS training through course previews.

Learn More
Learning Paths
FeaturedView all Focus Areas
NEW - AI Security Training
Can't find what you are looking for?

Let us help.

Contact us
Free Resources

SANS Community Benefits

Connect, learn, and share with other cybersecurity professionals

Customer Case Studies

Discover how organizations and individual cyber practitioners use SANS training and GIAC certifications

AI Risk & Readiness

Explore expert-driven guidance, training, and tools to help defend against AI-powered threats and adopt AI securely

Join the SANS Community

Become a member for instant access to our free resources.

Sign Up
For Organizations

Public Sector

Mission-focused cybersecurity training for government, defense, and education

Partnerships

Explore industry-specific programming and customized training solutions

Sponsorship Opportunities

Sponsor a SANS event or research paper

Interested in developing a training plan to fit your organization’s needs?

We're here to help.

Contact Us
Contact Sales
Contact Sales

Business Information Security Officer (BISO)

Return To SAP HomepageJoin The SANS Community
SAP

Role Description 

A BISO ensures cybersecurity is deeply integrated into the business, aligning security strategy with organizational objectives and fostering a culture of shared security responsibility across the enterprise. 

BLUF 

BISOs must balance technical security knowledge with business acumen and leadership skills. The courses below provide a clear roadmap for BISOs to grow from foundational security understanding (T1) to advanced leadership and cultural influence (T5). Each stage aligns directly with the TKSs required for BISOs at that level. 

Development Roadmap with TKS Alignment

T1 – Novice

Course: SEC275 / SEC401. Aligned TKSs: 101 Security Foundations, K1138 Cybersecurity Standards & Best Practices (introductory), K0677 Cybersecurity Policies & Procedures (introductory), K1052 Information Security Management Practices (introductory)

  • Slide 1 of 2

    SEC275: Foundations: Computers, Technology, & Security

    Beginner
    SEC275Cyber Defense
    SEC406: Linux Security for InfoSec Professionals
    • GIAC Foundational Cybersecurity Technologies (GFACT)
    • 38 CPEs / 38 Hours (Self-Paced)
    • Labs: 90 Hands-On Labs

    View course detailsRegister
  • Slide 2 of 2

    SEC401: Security Essentials - Network, Endpoint, and Cloud

    Essentials
    SEC401Cyber Defense
    SEC401: Security Essentials - Network, Endpoint, and Cloud
    • GIAC Security Essentials (GSEC)
    • 6 Days (Instructor-Led)
    • 46 CPEs / 46 Hours (Self-Paced)
    • Labs: 20 Hands-On Labs

    View course detailsRegister

T2 – Practitioner

Course: LDR512. Aligned TKSs: K0675 Risk Management Processes, K0676 Cybersecurity Laws & Regulations, K0677 Cybersecurity Policies & Procedures (applied), K0917 PII, PCI, PHI Data Security Standards & Best Practices

LDR512: Security Leadership Essentials for Managers

UPDATED
Intermediate
LDR512Cybersecurity Leadership
LDR512: Security Leadership Essentials for Managers
  • GIAC Security Leadership (GSLC)
  • 5 Days (Instructor-Led)
  • 30 CPEs / 30 Hours (Self-Paced)
  • Labs: 25 Hands-On Labs

View course detailsRegister

T3 – Advanced

Course: LDR514. Aligned TKSs: K1023 Risk Scoring Frameworks, K1052 Information Security Management Practices (advanced), K1138 Cybersecurity Standards & Best Practices (advanced application)

LDR514: Security Strategic Planning, Policy, and Leadership

Advanced
LDR514Cybersecurity Leadership
LDR514: Security Strategic Planning, Policy, and Leadership
  • GIAC Strategic Planning, Policy, and Leadership (GSTRT)
  • 5 Days (Instructor-Led)
  • 30 CPEs / 30 Hours (Self-Paced)
  • Labs: 32 Hands-On Labs

View course detailsRegister

T4 – Expert

Course: LDR519. Aligned TKSs: K1179 Organization’s Security Strategy, K1011 Knowledge of Adversarial TTPs, K0675 Risk Management Processes (enterprise level)

LDR519: Cybersecurity Risk Management and Compliance

Advanced
LDR519Cybersecurity Leadership
LDR519: Cybersecurity Risk Management and Compliance
  • 5 Days (Instructor-Led)
  • 30 CPEs / 30 Hours (Self-Paced)
  • Labs: 16 Hands-On Labs

View course detailsRegister

T5 – Expert / Mentor

Course: LDR521. Aligned TKSs: S0019 Skill in Communicating Complex Security Concepts, K1179 Organization’s Security Strategy (executive level), K1138 Cybersecurity Standards & Best Practices (influence & mentoring)

LDR521: Security Culture for Leaders

MAJOR UPDATES
Advanced
LDR521Cybersecurity Leadership
LDR521: Security Culture for Leaders
  • 5 Days (Instructor-Led)
  • 30 CPEs / 30 Hours (Self-Paced)
  • Labs: 22 Hands-On Labs

View course detailsRegister